17 matches found
Ipswitch WhatsUp Gold 7.0/8.0 Notification Instance Name Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11109/info The Ipswitch WhatsUp Gold web interface is prone to a remotely exploitable buffer overflow vulnerability. This may be exploited by authenticated users of the interface to execute arbitrary code in the context o...
iDefense Security Advisory 09.13.11: Microsoft Excel Record Integer Signedness Vulnerability
iDefense Security Advisory 09.13.11 http://labs.idefense.com/intelligence/vulnerabilities/ Sep 13, 2011 I. BACKGROUND Excel is the spreadsheet application included with Microsoft Corp.'s Office productivity software suite. More information is available at the following website:...
iDefense Security Advisory 02.08.11: Adobe Flash Player ActionScript Memory Corruption Vulnerability
iDefense Security Advisory 02.08.11 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 08, 2011 I. BACKGROUND Adobe Flash Player is an application for viewing animations and movies using computer programs such as a Web browser; in common usage, Flash lets you put animation and movies on a...
iDefense Security Advisory 04.14.09: Microsoft Word 2000 WordPerfect 6.x Converter Stack Corruption Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 04.14.09 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 14, 2009 I. BACKGROUND Word 2000 is a word processing application included with the Microsoft Office 2000 software. The WordPerfect Converter is a tool used...
iDefense Security Advisory 02.06.09: HP Network Node Manager Multiple Command Injection Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 02.06.09 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 06, 2009 I. BACKGROUND HP Network Node Manager NNM is an application suite that is used to map out and manage network topography. NNM runs on a variety of...
iDefense Security Advisory 08.30.07: Yahoo Messenger YVerInfo.dll ActiveX Multiple Remote Buffer Overflow Vulnerabilities
Yahoo Messenger YVerInfo.dll ActiveX Multiple Remote Buffer Overflow Vulnerabilities iDefense Security Advisory 08.30.07 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 30, 2007 I. BACKGROUND Yahoo! Messenger is a instant messaging application that allows users to chat online, share...
[Full-disclosure] iDefense Security Advisory 08.14.07: Microsoft XML Core Services XMLDOM Memory Corruption Vulnerability
Microsoft XML Core Services XMLDOM Memory Corruption Vulnerability iDefense Security Advisory 08.14.07 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 14, 2007 I. BACKGROUND XML Core Services also known as MSXML is a library for processing XML files. It works with, and was original par...
iDefense Security Advisory 07.16.07: Trend Micro OfficeScan Management Console Authorization Bypass Vulnerability
Trend Micro OfficeScan Management Console Authorization Bypass Vulnerability iDefense Security Advisory 07.16.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jul 16, 2007 I. BACKGROUND Trend Micro OfficeScan is a centrally managed AntiVirus solution that allows administrators to manage...
iDefense Security Advisory 06.07.07: Linux Kernel cpuset tasks Information Disclosure Vulnerability
Linux Kernel cpuset tasks Information Disclosure Vulnerability iDefense Security Advisory 06.07.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 07, 2007 I. BACKGROUND Linux is a clone of the UNIX operating system, written from scratch by Linus Torvalds with assistance from a...
LiveData Protocol Server fails to properly handle requests for WSDL files
Overview The LiveData Protocol Server fails to properly handle requests. This vulnerability may allow a remote attacker to execute arbitrary code. Description The LiveData Protocol Server is real-time data acquisition and processing software used to record and transmit data among process control...
[Full-disclosure] iDefense Security Advisory 11.09.06: Citrix Presentation Server 4.0 IMA Service Invalid Name Length DoS Vulnerability
Citrix Presentation Server 4.0 IMA Service Invalid Name Length DoS Vulnerability iDefense Security Advisory 11.08.06 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 08, 2006 I. BACKGROUND Citrix Presentation Server is a product designed to allow remote access to applications over a...
GNU Mailutils imap4d 0.6 (search) Remote Format String Exploit (fbsd)
Exploit for bsd platform in category remote exploits ===================================================================== GNU Mailutils imap4d 0.6 search Remote Format String Exploit fbsd ===================================================================== / Copyright c 2005 Rosiello Security...
FreeBSD : awstats -- arbitrary code execution vulnerability (e86fbb5f-0d04-11da-bc08-0001020eed82)
An iDEFENSE Security Advisory reports : Remote exploitation of an input validation vulnerability in AWStats allows remote attackers to execute arbitrary commands. The problem specifically exists because of insufficient input filtering before passing user-supplied data to an eval function. As part...
GNU Mailutils imap4d 0.6 (FreeBSD) - 'Search' Remote Format String
/ Copyright c 2005 Rosiello Security http://www.rosiello.org Permission is granted for the redistribution of this software electronically. It may not be edited in any way without the express written consent of Rosiello Security. Disclaimer: The author published the information under the condition...
Exim <= 4.41 dns_build_reverse Local Exploit PoC
Exploit for linux platform in category local exploits ================================================ Exim int main int argc, char argv static char shellcode= "\xeb\x17\x5e\x89\x76\x08\x31\xc0\x88\x46\x07\x89\x46\x0c\xb0\x0b\x89"...
[Full-Disclosure] iDEFENSE Security Advisory 08.03.04b: NGSEC StackDefender 2.0 Invalid Pointer Dereference Vulnerability
NGSEC StackDefender 2.0 Invalid Pointer Dereference Vulnerability iDEFENSE Security Advisory 08.03.04b www.idefense.com/application/poi/display?id=119&type=vulnerabilities August 3, 2004 I. BACKGROUND StackDefender is an IPS Intrusion Prevention System, for Win32 platforms, that will deny shellco...
[Full-Disclosure] iDEFENSE Security Advisory 07.09.04: wvWare Library Buffer Overflow Vulnerability
wvWare Library Buffer Overflow Vulnerability iDEFENSE Security Advisory 07.09.04 www.idefense.com/application/poi/display?id=115&type=vulnerabilities July 09, 2004 I. BACKGROUND Caoln McNamara and Dom Lachowicz's wvWare is a library used to load and parse Microsoft Word files on unix-based system...